04-01-2014 11:02 AM - edited 02-21-2020 07:35 PM
I want to enable my remote access VPN users to access the servers behind another tunnel terminated on my ASA. Is that possible
Remote Access VPN Users ------- Internet -------------ASA-------Internet --------Site to Site Tunnel.
04-02-2014 04:17 AM
Hi Imran,
I believe it should work.... but performance would be an impact here...
04-02-2014 04:26 AM
Yes this will work. Just need to add the relevant IP address to the crypto ACL as well as creating a no_nat statement that hairpins the traffic out the outside interface. In addition you need to add the command same-security-traffic permit intra-interface, if you haven't already done so.
--
Please rememeber to rate and select a correct answer
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide